$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft File: bODpSXEbID5KyyK2gPP_9H7RbGE.mft (raw, json) Hash identifier: UmlHNcFeZiXru49Y17z4TcaP01ptKtuX16XjKMBNYS0= Subject key identifier: 04:F9:37:71:93:90:04:8D:25:FC:0A:D3:F0:D7:BC:A9:43:78:21:E9 Authority key identifier: 6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61 Certificate issuer: /CN=A91BDC3F/serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61 Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft Manifest number: CA Signing time: Tue 13 May 2025 05:03:39 +0000 Manifest this update: Tue 13 May 2025 05:03:38 +0000 Manifest next update: Tue 20 May 2025 05:03:38 +0000 Files and hashes: 1: bODpSXEbID5KyyK2gPP_9H7RbGE.crl (hash: LWX6hTchizi5f7kDE8edPa2FOiCRGNcruz60xGr5xpw=) 2: 7980C32AA71B11EFA8320136C4F9AE02.roa (hash: svWCFcB6b/XkbZIPeHevXUk9kvL6MAqPQu9nAp05skM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:03:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDC3F, serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61 Validity Not Before: May 13 05:03:38 2025 GMT Not After : May 20 05:03:38 2025 GMT Subject: CN=6822d2aa-184a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:a3:f3:ea:21:a1:96:53:cd:4e:fa:73:8d:a1: 05:8a:56:32:4e:45:74:af:25:0a:10:72:30:ee:ed: cc:fc:1b:97:0f:f6:55:6f:46:7a:55:2b:7f:2f:ac: 03:7c:f0:56:db:a4:1d:14:47:bf:b9:03:cc:de:56: 2c:c4:cd:a4:7a:c3:92:78:9a:29:c9:2c:ae:41:86: 31:6f:c3:87:85:53:dc:94:fc:4d:01:c7:11:90:74: 0e:09:36:e2:ef:b6:34:96:48:6a:23:dd:58:86:7a: 3b:32:8d:d2:8d:48:6b:68:05:a1:56:de:e5:68:63: a2:0c:b8:9a:ea:50:48:86:1a:bd:de:d2:7e:c1:85: 93:9a:f6:ba:e0:c6:ee:91:96:01:7e:69:d5:fe:e2: 65:2a:8b:f2:40:8e:ae:71:87:e1:77:8e:ac:c5:72: 7d:ff:8d:4b:45:57:ee:4c:d7:65:fe:cc:a2:15:80: 30:94:7e:0d:37:34:c4:7e:af:38:8e:fa:3f:7a:66: 12:b5:e7:0b:ae:5f:f6:f6:19:7c:1a:3f:95:ee:2a: 05:9d:74:d9:d6:30:ac:4d:a0:d5:4f:d5:3e:54:fc: b7:b0:f1:ab:db:6d:b6:2a:17:a6:94:cd:b4:6b:bd: f1:62:63:48:cd:ad:95:0b:f9:36:97:1c:b3:04:a7: af:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:F9:37:71:93:90:04:8D:25:FC:0A:D3:F0:D7:BC:A9:43:78:21:E9 X509v3 Authority Key Identifier: keyid:6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:67:cb:94:6b:bd:ee:7d:cc:8b:2e:c1:a6:c7:90:a0:08:41: 2b:9f:1c:f2:14:7e:20:fa:15:66:aa:3f:c4:37:3d:b0:57:d2: c5:f5:0a:6c:af:a8:ab:9b:63:eb:89:f5:f2:cd:a8:77:11:cd: 84:dd:ac:99:bb:4b:58:d0:4b:e0:f6:85:67:e6:ac:04:11:62: f3:8b:a1:23:4f:50:08:14:f7:c7:03:82:b9:d0:d6:d0:01:ae: 6b:2e:ef:f4:30:5e:ac:54:54:25:12:7f:2c:37:b0:1d:65:23: f2:23:dd:88:13:e9:86:cf:c5:69:a6:29:9a:2c:df:5e:af:92: f3:0b:11:ae:1c:70:99:a5:03:a5:a3:af:43:9c:04:32:1c:a2: 33:1a:71:f7:f3:22:34:4e:fb:e3:2b:66:61:df:74:3b:ec:5b: d3:3c:b6:de:5f:b3:3b:29:eb:04:c1:32:7a:d6:f9:0a:ab:62: 2e:e6:86:92:6d:5f:61:84:9e:42:90:e9:dc:25:c2:2a:72:60: cf:2d:ba:57:11:0a:03:ed:c1:32:55:66:d1:d1:62:07:c6:8a: 46:c5:98:d1:40:05:0b:fc:b9:7f:67:7a:c6:f7:32:c2:c8:76: 5f:b0:d9:6b:0c:37:08:59:f6:aa:94:e0:cb:f8:d8:26:f2:a9: ba:6f:ed:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRDM0YxMTAvBgNVBAUTKDZDRTBFOTQ5NzExQjIwM0U0QUNCMjJCNjgwRjNGRkY0 N0VEMTZDNjEwHhcNMjUwNTEzMDUwMzM4WhcNMjUwNTIwMDUwMzM4WjAYMRYwFAYD VQQDEw02ODIyZDJhYS0xODRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6aPz6iGhllPNTvpzjaEFilYyTkV0ryUKEHIw7u3M/BuXD/ZVb0Z6VSt/L6wD fPBW26QdFEe/uQPM3lYsxM2kesOSeJopySyuQYYxb8OHhVPclPxNAccRkHQOCTbi 77Y0lkhqI91Yhno7Mo3SjUhraAWhVt7laGOiDLia6lBIhhq93tJ+wYWTmva64Mbu kZYBfmnV/uJlKovyQI6ucYfhd46sxXJ9/41LRVfuTNdl/syiFYAwlH4NNzTEfq84 jvo/emYStecLrl/29hl8Gj+V7ioFnXTZ1jCsTaDVT9U+VPy3sPGr2222KhemlM20 a73xYmNIza2VC/k2lxyzBKev6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAT5N3GT kASNJfwK0/DXvKlDeCHpMB8GA1UdIwQYMBaAFGzg6UlxGyA+SssitoDz//R+0Wxh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREMzRi81Q0U4MTA0NjBF QjAxMUVGODcyRTgxMjdDNEY5QUUwMi9iT0RwU1hFYklENUt5eUsyZ1BQXzlIN1Ji R0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPRHBTWEViSUQ1S3l5SzJnUFBfOUg3UmJHRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC REMzRi81Q0U4MTA0NjBFQjAxMUVGODcyRTgxMjdDNEY5QUUwMi9iT0RwU1hFYklE NUt5eUsyZ1BQXzlIN1JiR0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHZ8uUa73ufcyLLsGmx5CgCEErnxzyFH4g+hVmqj/ENz2wV9LF9Qps r6irm2PrifXyzah3Ec2E3ayZu0tY0Evg9oVn5qwEEWLzi6EjT1AIFPfHA4K50NbQ Aa5rLu/0MF6sVFQlEn8sN7AdZSPyI92IE+mGz8VppimaLN9er5LzCxGuHHCZpQOl o69DnAQyHKIzGnH38yI0TvvjK2Zh33Q77FvTPLbeX7M7KesEwTJ61vkKq2Iu5oaS bV9hhJ5CkOncJcIqcmDPLbpXEQoD7cEyVWbR0WIHxopGxZjRQAUL/Ll/Z3rG9zLC yHZfsNlrDDcIWfaqlODL+Ngm8qm6b+0k -----END CERTIFICATE-----Generated at Tue May 13 19:46:29 2025 by rpki-client